We wanted to inform you that on February 2, 2020. there has been a breach in the availability and integrity of your personal data such as name, surname, PESEL number, date of birth, address of residence or stay.
This applies to those training at our Professional Development Center at ZIAD Bielsko-Biała SA between 2002 and January 2020. The above occurred as a result of malware with an unknown name, and the subsequent encryption of files on the Company’s server – the data was encrypted in such a way that it could not be accessed.
However, we have a paper version of them and therefore access to them is possible, but requires more time. From the information we have, it appears that the data was only encrypted (and not shared or used in any way by third parties).
In addition, we wanted to clarify that we do not process your personal data in the form of ID card series and number. Entering into a contract for credit, a contract with a telecommunications provider, etc., would require, in addition to the data that was attacked, the series and number of an identity card or other document with a photo as well as the physical presentation of that document at the conclusion of the contract.
Thus, your personal data that the Company processes is insufficient to enter into this type of contract. As a result of the data breach, the Company plans to increase system security (anti-virus, firewall programs), regularly monitor and test IT equipment, networks and infrastructure, continue to maintain a backup policy, and restrict access to files and folders containing personal data.
We have notified the President of the Data Protection Authority of the data breach, as well as the Police.
If you have any questions or would like to provide additional information in connection with the incident, please contact: p. Janusz Kubica, tel. +48 338138 251, e-mail: firstname.lastname@example.org
The Company makes every effort to ensure that your personal data is processed in a way that guarantees its security. We assure you that the incident in question was incidental and resulted from an external action beyond the Company’s control.
We have made efforts to make the consequences of the violation as little as possible for you, nevertheless, we sincerely apologize for the entire incident.